What Is Modern Authentication?

Рет қаралды 4,427

2 ай бұрын

⏰ OAuth2, aka a "Modern authentication method", removes the burden of authentication from the email program to the email service itself, enabling a number of important security features.
⏰ Modern authentication: how and why
To accommodate Microsoft’s “Modern Authentication Methods” in many email programs, you need to set up the entire email account, including both incoming and outgoing mail, using OAuth2. During setup, the program hands off authentication to Microsoft, enabling enhanced security that includes two-factor, passwordless authentication, and more.
Updates, related links, and more discussion: askleo.com/172824
🔔 Subscribe to the Ask Leo! KZbin channel for more tech videos & answers: go.askleo.com/ytsub
✅ Watch next ▶ Is Passwordless Authentication Safe? ▶ kzbin.info/www/bejne/bmLakIqXfKyoo80
Chapters
0:00 Modern Authentication
0:30 What is it?
1:40 Passwordless account
Authenticate on your app
❤️ My best articles: go.askleo.com/best
❤️ My Most Important Article: go.askleo.com/number1
More Ask Leo!
☑️ askleo.com to get your questions answered
☑️ newsletter.askleo.com to subscribe to the Confident Computing newsletter.
☑️ askleo.com/patron to help support Ask Leo!
☑️ askleo.com/all-the-different-ways-to-get-ask-leo/ for even more!
#askleo #OAuth2 #authentication

Пікірлер: 17

@askleonotenboom 2 ай бұрын

✅ Watch next ▶ Is Passwordless Authentication Safe? ▶ kzbin.info/www/bejne/bmLakIqXfKyoo80

@1verstapp Ай бұрын

usual questions 1. what was so bad about the old method that it has to be replaced? 2. what's the fallback procedure for when the new method doesn't work?

@marco31 Ай бұрын

With the new method you don't send your username and password every time you check your email which made it easy for hackers to intercept them. The fallback depends on the service, with outlook you get a recover key which you should keep safely.

@dennisclapp7527 Ай бұрын

Thanks Leo

@liowyew Ай бұрын

I don't like to use 2 step authentication. What if phone is lost or misplaced? If that's the case, how do I retrieve the emails without the phone?

@OlettaLiano Ай бұрын

That's a good question. I can't even make a new Gmail account because I don't own a phone.

@marco31 Ай бұрын

Leo was unclear in the video. You don't need to have 2fa verification enabled to use oauth2. oauth2 authentication will be mandatory for outlook in september. Every email program must use this authentication method regardless if you have 2fa or not.

@ianbrooke6342 2 ай бұрын

So having authenticated oneself like this do we ever have to do it again? For example, if we 'logout' of the email and later try to login again, or login to it from another device, does it authenticate in the same way? If so, what happens if we have lost the phone (or other device) containing the authenticator app?

@johnhpalmer6098 2 ай бұрын

Obviously, you didn't listen closely, he said it'll remember you and you are authenticated successfully previously so you should not have to do it again.

@ianbrooke6342 2 ай бұрын

@@johnhpalmer6098 You'd have to define "you". If I'm in a different location, trying to access my email on a different computer, without the phone I used to authenticate, which is a plausible scenario (for example I'm on a trip and my phone is stolen, or a fire at home), how do I ever get back into my account? There's no password, there seems no way to access it.

@ianbrooke6342 Ай бұрын

@@johnhpalmer6098 I'll put it more simply. If I'm away from the computer I authenticated on and try to access my email, I assume I will be authenticated again but what happens if I no longer have the phone I used to authenticate, maybe it's been stolen, left behind, damaged, whatever. How do I get into the email without a password. I don't understand how it works, and I doubt you do either.

@marco31 Ай бұрын

If you try log in from another device then you need to authenticate that new device, too.

@liowyew Ай бұрын

Is passwordless feature good?

@askleonotenboom Ай бұрын

I've come to like it, yes.

@liowyew Ай бұрын

I like thunderbird because it's also good to receive RSS feeds

@StijnHommes Ай бұрын

3:44 So if the message Thunderbird sends to Microsoft is intercepted and a fake approval is sent back, a hacker is in. Way to go, Thunderbird! You skipped proper authentication because you were too lazy to implement it.